2024-03-28_e9139d4b9d49e086f91f4c90fafa3225_mafia | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-28_e9139d4b9d49e086f91f4c90fafa3225_mafia
Size

448KB
MD5

e9139d4b9d49e086f91f4c90fafa3225
SHA1

0b42856f939ac8cf9b46df93bd39335c20166ffb
SHA256

c22284e9b57f8f010e2575b249a37b1a7b67e76df45f29f44c31b700fbd6d1d6
SHA512

6d2142b05e5c60c44f8a863e5a56f895d72f4a91b8cfb5f361411bb0373420bd7b085799f80542ea0cbe8a39c6f7d56c64cd4bcd54e000ff76c50f12960fe47b
SSDEEP

12288:lb4bBxdi79LbQpGJZT5hj1EJsG9WS/Od7:lb4b7dkLMpE551ZG9WbV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-28_e9139d4b9d49e086f91f4c90fafa3225_mafia

Files

2024-03-28_e9139d4b9d49e086f91f4c90fafa3225_mafia
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 260KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.htext
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE